-
Bug
-
Resolution: Done
-
None
-
None
-
None
-
Operating System: All
Platform: All
-
1913
Steps
I installed the karaf distribution from
It was either build #2402 or #2401 from Sep 16. Not sure which because version.properties doesnt set a timestamp.
I deployed the artifact and booted using <odl-home-dir>/bin/karaf
when the console was open I installed features
feature:install odl-restconf odl-bgpcep-all odl-netconf-connector-ssh
After waiting a few minutes I tried GET request to
<localhost>restconf/operational/network-topology:network-topology/ this was a succesful, a 200 HTTP stus code and the expected payload was sent.
I logged out of the karaf container using "logout"waited for all the processes to terminate , confirmed using ps aux | grep java and restarted the karaf container using <odl-home-dir>/bin/karaf
After a fewm minutes wait for the system to come up
accessing the URI at
<localhost>:8181/restconf/operational/network-topology:network-topology/ now resulted in a 401 error.
It's also interesting that while the system was coming up a 404 status code and then a 500 status code was received. they were finally replaced with 401 code after odl-netconf-connector-ssh feature was loaded.
The stack trace for the 500 error showed that odl-aaa-authn and odl-aaa-authn-plugin was thowing an exception so we wondered what would happen if we uninstlled this.
feature:uninstall odl-aaa-authn
feature:uninstall odl-aaa-authn-plugin
I didnt expect it to work because odl-netconf-connector-ssh is dependent on these features but we could uninstall them, which maybe a bug also. We still couldn't access resfconf on port 8181 but rather than not being authorised , I think the reason is that we had broken odl-netconf-connector-ssh by removing its dependencies.
In summary I think this is a bug because odl-aaa-authn-plugin and odl-aaa-authn are configured to block restconf connections by default.
